News

125+ Cybersecurity Companies in Healthcare to Know | 2018

Becker’s Hospital Review, Laura Dyrda, June 25, 2018

Healthcare organizations face an increasing threat from cyber attacks and hospitals are spending big to ensure their patients’ data is protected. In 2017, healthcare spending on IT reached $100 billion and there were around 32,000 intrusion attacks per day on healthcare organizations, according to FortiGuard Labs, as reported by CSO.

Here are more than 125 companies focused on cybersecurity for hospitals, health systems and other healthcare organizations.

Contact Laura Dyrda to recommend a company for this list at ldyrda@beckershealthcare.com and Ryan Ciepley at rciepley@beckershealthcare.com.

Absolute (Vancouver, Canada). Absolute offers near real-time security breach remediation. The company’s Absolute Persistence product, a self-healing endpoint security technology, provides IT personnel control over devices and data. Absolute’s cloud-based visibility allows for remote IT asset management and security for healthcare providers, including support from its healthcare information security and privacy practitioners and ASIS-certified protection professionals.

AlienVault (San Mateo, Calif.). AlienVault is the provider of Unified Security Management, a comprehensive approach to security monitoring, and the AlienVault Open Threat Exchange, an open threat intelligence community enabling collaborative defense with community-powered threat data. USM is designed to monitor cloud, hybrid cloud and on-premises environments.

Arxan (San Francisco). Arxan offers application attack-prevention and self-protection products for the internet of things with mobile and desktop applications. The company aims to protect customers from financial loss, fraudulent transactions, stolen credentials and internet protocol theft. In the healthcare space, Arxan offers protection for embedded apps in medical devices.

Attivo Networks ThreatDefend (Fremont, Calif.). The ThreatDefend Deception and Response Platform is a powerful security control for an active defense, which provides early threat detection and changes the asymmetry against attackers. The Attivo Networks deception solution takes an innovative approach to detection by dynamically setting traps and lures to create a virtual hall of mirrors, altering an attacker’s reality and imposing increased cost as they are forced to decipher what is real versus fake.

Auth0 (Bellevue, Wash.). Auth0 is a HIPAA-compliant service that healthcare organizations can use with their business associates when handling protected healthcare information. The company provides authentication for third-party business associates and ensures all data transfers are HIPAA-compliant. On May 15, the company announced $55 million in series D funding.

Axway (Phoenix). The Axway Amplify Platform is a data and engagement platform that can provide real-time operational intelligence and API lifestyle management. In the healthcare space, the Axway Amplify can help eliminate silos, overcome interoperability challenges, accelerate meaningful use and promote patient engagement with health information.

Barrier1 (Minneapolis). Barrier1’s Real-Time Intelligent Threat Management and the Advanced Analytics Reactive Engine platforms are designed to protect against security breaches. The technology inspects traffic type and dataflow to stop malware and viruses; analyzes the real time data flow; and inspects the network with multiple methods of authentication. The company’s customers include hospitals, clinics and specialty providers with MRI and CT Scans from multiple hospitals and clinics.

Battelle (Columbus, Ohio). Battelle is a nonprofit research and development organization that includes a team of experts devoted to medical device cybersecurity. The team members, led by a certified ethical hacker, hacks into medical devices to help manufacturers identify vulnerabilities in the software, mitigate cybersecurity risks and help design new products.

Bayshore Networks (Bethesda, Md.). Bayshore offers solutions for a variety of cyber initiatives, including industrial asset visibility, cybersecurity protection and managed remote access. The company aims to help clients eliminate cyber threats and risks while preparing to achieve industrial internet of things maturity. In March, Bayshore announced a global engineering expansion with plans to open two new engineering centers of excellence in 2018.

BeyondTrust (Phoenix). BeyondTrust delivers cybersecurity solutions designed to reduce risks and act against internal and external data breach threats. The company offers an integrated risk intelligence platform to identify critical risks and provide information for the company. In the healthcare space, BeyondTrust’s PowerBroker privileged account management solution enforces best practices; its Retina vulnerability management solutions allows the healthcare IT security team to identify exposure, analyze the business impact and conduct remediation.

Bitglass (Campbell, Calif.). The Bitglass Cloud Access Security Broker solution enables organizations to ensure security and regulatory compliance when using cloud apps. Founded in 2013, the company aims to protect corporate data on managed and unmanaged devices. Bitglass’ platform can help healthcare professionals with multiple hospital affiliations access files on any device and maintain visibility and control of their data. In April, Bitglass partnered with Cylance to provide protection across cloud and mobile devices.

BlueCat (Grapevine, Texas). BlueCat centralizes and automates domain name server services so organizations can leverage the DNS data for increased visibility, control and compliance. The company takes a software-centric approach to information security and promotes interoperability to manage complex network structures. In the healthcare arena, BlueCat allows organizations to centrally manage and track wired and wireless networks and devices.

Bradford Networks (Boston). Bradford Networks’ network entry solution is designed to continuously assess risks of all users and endpoints. The technology integrates with existing endpoint security, firewall and threat detection solutions through the SmartEdge Platform.

Bromium (Cupertino, Calif.). Bromium focuses on the global enterprise security market and its Bromium Secure Platform protects against all advanced malware. The company’s solution can secure patient data and minimize breaches across the healthcare industry.

CA Technologies (New York City). CA Technologies works with healthcare organizations on digital transformation initiatives to prevent cybersecurity attacks while still providing streamlined access to authorized employees and partners. The company has worked with BlueCross BlueShield of Tennessee, Englewood, Colo.-based Catholic Health Initiatives and GlaxoSmithKline Vaccines in the healthcare space.

Centripetal (Herndon, Va.). Centripetal’s core networking technologies are designed to simplify cyber intelligence collection and management to stop unwanted network traffic. The company’s QuickThreat Gateway combines proprietary software and hardware to detect and enforce 5 million threat indicators. In 2017, Centripetal was named a Gartner “Cool Vendor” in security.

Citrix (Fort Lauderdale, Fla.). Citrix provides a secure digital workspace to unify apps, data and services necessary for productive organizations while allowing IT personnel to manage complex cloud environments. The workspace as a service company developed a platform for enterprise file synchronization and sharing with users across all business segments. The Citrix Windows apps solution allows healthcare organizations to securely deliver apps to diverse mobile devices including tablets and smartphones. The company’s Enterprise Mobility Management Technologies provides security for bring-your-own-device environments.

Clearwater Compliance (Nashville, Tenn.). The American Hospital Association endorsed Clearwater Compliance as a leading provider of hospital and health system compliance and cybersecurity management solutions. The company has implemented systems in hundreds of hospitals and health systems, Fortune 100 organizations and the federal government. In January, Clearwater Compliance raised capital through an investment from Altaris Capital Partners.

Coalfire (Westminster, Colo.). Coalfire is the cybersecurity advisor that helps covered entities and business associates avert threats, close gaps and effectively manage risk. By providing independent and tailored advice, compliance assessments, technical testing and cyber engineering services, the company secures health data throughout the care continuum. Coalfire is one of the original HITRUST CSF assessor firms with the experience required to efficiently manage successful certifications.

Code42 (Minneapolis). Code42 is a software as a service solution designed to back up distrusted end-user data on a secure platform. The company’s software can protect files across Mac, Windows and Linux laptops and desktops automatically to limit risks and meet data privacy regulations.

Comodo (Clifton, N.J.). Comodo has more than 100 million installations of its security product in healthcare as well as other industries. Comodo’s technology authenticates, validates and secures networks and infrastructures around the world, designed to solve advanced malware threats, both known and unknown.

Cryptzone (Waltham, Mass.). Cryptzone focuses on identity-centric security solutions to protect information from internal and external threats. The company uses a software-defined perimeter model to protect applications and content from threats, which can also streamline operations and lower costs. In the healthcare space, Cryptzone’s network, application and content solutions are designed to encrypt data, restrict access to private information and share documents in a HIPAA-compliant way.

Cybereason (Boston). Cybereason’s platform can identify a single component of an attack and connect it to other information in the system to shut down the attacker’s entire campaign. The platform is designed to quickly build the complex attack story and simplify the resolution process.

Cylance (Irvine, Calif.). Cylance is an artificial intelligence-driven endpoint detection and response solution designed to predict and prevent cyberattacks. The company’s products are designed to secure the entire healthcare infrastructure, working across Microsoft Windows and Mac OS X to integrate with existing security information and event management platforms.

Cymmetria (Palo Alto, Calif.). Cymmetria develops comprehensive cyber deception solutions based on breadcrumbs and decoys to lead attackers away from targets. Founded in 2014, the company aims to change the asymmetry of cybersecurity to reduce the odds hackers are left vulnerable information.

CynergisTek (Austin, Texas). CynergisTek is a cybersecurity and privacy consulting firm. The company helps organizations assess privacy and security risk programs with regulatory requirements as well as develop best practices for risk management. CynergisTek was named Best in KLAS for Cyber Security Advisory Services in 2017.

DarkOwl (Denver). DarkOwl is an information security company specializing in darknet (or “dark web”) intelligence. Founded in 2009, DarkOwl has built the world’s largest commercially available database of darknet content. Its database allows clients to search the darknet without accessing it directly, which is both difficult and dangerous. The darknet platform also allows clients to passively monitor the darknet for their sensitive information, enabling near real-time awareness of any potentially breached information.

Dataguise (Fremont, Calif.). Dataguise provides a solution for global data governance, allowing organizations to detect, protect and monitor sensitive data in real time on the premises and in the cloud. Healthcare organizations can use the company’s Hadoop product to streamline and analyze billing data to reduce costs and fraud incidents; digitize patient records; and incorporate sensor and internet of things health monitoring data.

DB Networks (San Diego). DB Networks aims to protect databases from insider threats and cyberattacks. Founded in 2009, the company launched the first signatureless database cybersecurity product in 2013 and has received a patent for its approach to database protocol information extraction. Last year, the company launched its first artificial intelligence-based agentless database activity monitoring to protect against cyberattacks.

Digital Defense (San Antonio). Digital Defense’s Frontline Vulnerability Manager is a service platform designed to scan for vulnerabilities and provide penetration testing for organizations. The company’s Frontline Social Testing promotes security-minded behaviors among employees. Overall, the company aims to safeguard data and ease burdens associated with maintaining information security.

DomainTools (Seattle). DomainTools examines network indicators and connects them with other active domains to develop risk assessments, identify attackers, assist in fraud investigations and map cybersecurity activity to attacker infrastructure. The company works with U.S. government agencies and contracts in addition to companies in the financial and healthcare space.

Duo Security (Ann Arbor, Mich.). Duo Security aims to secure organizations that operate in the cloud and manage a bring-your-own-device environment. Duo is a software as a service company that orchestrates two-factor authentication to help healthcare organizations maintain and share information in a HIPAA-compliant fashion. In May, the company launched a cybersecurity website called Decipher.

eSentire (Cambridge, Ontario). eSentire is a pure-play managed detection and response service provider that protects organizations from the constantly evolving cyberattacks technology alone can’t prevent. The company provides a 24-7 security operations center staffed by analysts to investigate and respond to threats in real time.

ESET (Bratislava, Slovakia). ESET was founded as an antivirus protection company and has expanded to include security solutions for customers in more than 200 countries. ESET’s solution for healthcare companies protects against data breaches and can be deployed across multiple operating systems and endpoints.

Flexera Software (Itasca, Ill.). Flexera Software aims to help enterprises and application producers increase application usage and security. The company has more than 80,000 customers in a variety of industries. Flexera’s FlexNet Producer Suite is designed for intelligent device manufacturers as an end-to-end solution for software licensing, entitlement management and device lifecycle management.

ForeScout (Cupertino, Calif.). ForeScout’s approach to security protects organizations against emerging threats with the ForeScout CounterACT. The company’s technology assesses, remediates and monitors devices continuously and works with disparate security tools to accelerate incidence response. More than 2,400 customers in 60 countries use ForeScout technology for network security and compliance. Healthcare organizations use the technology to secure agentless medical devices and mobile computing against cyberattacks.

ForgeRock (San Francisco). ForgeRock is a digital identity management company that works with organizations to adopt the ForgeRock Identity Platform. The platform allows healthcare providers to create secure digital identities for patients and collects data from apps, wearables and digital health and wellness services. In May, the company joined Philips, Qualcomm Life and others on a collaborative effort to enhance data from medical devices under the name OpenMedReady.

General Dynamics IT (Fairfax, Va.). General Dynamics IT’s cybersecurity operations provide service support to select the best security systems, develop data protection policies and monitor their networks. The company provides cybersecurity for the Department of Defense, local and state governments and select commercial customers. The company provides its full security services in the General Dynamics Health Solutions package to secure hospitals’ systems and protect information.

GigaTrust (Herndon, Va.). Founded in 2000, GigaTrust provides security software to protect emails and attachments, documents, administrative oversight and compliance tools. The company provides a software as a service secure document rendering experience inside and outside of an enterprise’s network.

Globalscape (San Antonio). Globalscape was founded in 1996 and since then has grown to provide information exchange software and services to more than 13,000 customers in more than 150 countries. The company focuses on providing secure data transfer through its managed file transfer platform for on-premises, cloud or hybrid deployments. Globalscape also offers electronic funds transfer for healthcare organizations including secure and compliant data management, data integration, automation management, workflow management and real-time activity monitoring and tracking.

GreyCastle Security (Troy, N.Y.). GreyCastle Security is a risk management company with cybersecurity capabilities. The company provides a team of cybersecurity experts, a client portal to view cybersecurity efforts, custom security roadmaps, an incident response team and an account manager to maximize the cybersecurity program. The company also provides HIPAA risk assessments, 24/7 breach and incident response, HIPAA security training and policy development. In June, GreyCastle Security acquired EagleDream Technology’s cybersecurity division, adding to the company’s footprint in Rochester, N.Y., where 10 of the company’s 75 experts are located.

GuardiCore (San Francisco). GuardiCore focuses on data center innovation and cloud security to deliver accurate and effective solutions to stop advanced threats. The company’s real-time breach detection and response software was developed by cybersecurity experts to fight attacks in an organization’s data center.

Haystack Informatics (Philadelphia). Haystack Informatics was founded out of the Children’s Hospital of Philadelphia to provide solutions for monitoring patient privacy. Haystack professionals analyze interactions between hospital staff and patients to identify privacy violations and security risks. The team uses multiple detection engines to identify inappropriate behavior and reinforces employee training in privacy matters.

HID Global (Austin, Texas). HID Global provides identity security solutions to governments and hospitals as well as educational and financial institutions. The company provides information security solutions to hospitals, mobile device use, visitor management and HIPAA-compliant medical record security and also gives suppliers secure access to the appropriate data.

HITRUST Alliance (Frisco, Texas). HITRUST Alliance is a nonprofit organization leading advocacy efforts and educational support to safeguard healthcare information and manage risk. HITRUST was founded in 2007 to protect health information systems and exchanges, providing access to common risk and compliance management, de-identification frameworks and related assessment and assurance methodologies.

Hortonworks (Santa Clara, Calif.). Hortonworks creates and supports enterprise-ready open data platforms and modern data applications. Founded in 2011, the company provides services to Oracle, Microsoft and Red Hat, a multinational software company.

Ixia (Calabasas, Calif.). Ixia was founded in May 1997 to provide testing, visibility and security solutions for governments, service providers and network equipment manufacturers. The company helps customers manage IT and protect against security threats with technologies for mobile devices, cloud security, internet of things management and improved network visibility.

LookingGlass Cyber Solutions (Reston, Va.). LookingGlass Cyber Solutions protects global enterprises and government agencies against cyberattacks. The company provides healthcare organizations with a team of analysts through its Threat Intelligence Analysis and Management system to identify potential security threats, analyze multiple threat factors and indicators as well as develop a plan to mitigate threats in real time.

MedCrypt (Encinitas, Calif.). MedCrypt provides application programming interfaces to encrypt data sent from devices and allows customers to assign unique keys to every actor in the system and monitor what devices are doing remotely in real time. After installation in the device, MedCrypt Nodes communicates with the company’s centralized transaction monitoring service to look for anomalous behavior. In March 2018, MedCrypt won the HIMSS Venture Connect startup prize.

Meditology Services (Atlanta). Meditology Services provides consulting and management advisory to large hospitals and healthcare organizations across the country. Meditology’s experts in IT risk management and healthcare IT consulting focus on assessing and developing security and compliance programs.

Microsoft (Redmond, Wash.). Microsoft invests more than $1 billion in security research and development each year and created the Microsoft Enterprise Cyber Security Group to develop solutions for Microsoft customers. The company opened its Cyber Defense Operations Center in 2015 and works with healthcare organizations’ C-suites to support a culture of cybersecurity.

NCC Group (Manchester, United Kingdom). Formed in 1999, NCC Group provides expertise in cybersecurity and risk mitigation. The company has more than 35 offices and 15,000 clients worldwide, providing a variety of services including internet of things consultancy.

NetScout (Westford, Mass.). NetScout’s Adaptive Service Intelligence optimizes a hospital’s analytics platforms to identify signs of outages in the hospital’s network before they occur to diagnose and repair the issues quickly. The technology could prevent issues with a surgical robot powering down in the middle of surgery or video screens going dark during a procedure.

Netskope (Los Altos, Calif.). Netskope has a patented cloud-scale security platform designed to provide governance of all cloud usage while allowing real-time access to updates from the corporate network, remotely or from mobile apps. The company works with Oakland, Calif.-based Kaiser Permanente among other healthcare clients to protect against threats in the cloud and detect unusual data movement or activity.

Okta (San Francisco). Okta’s IT products use identity information to grant access to applications on any device at any time while enforcing strong security protections. The platform connects companies to customers and partners securely. Okta works with CMS, New York City-based Mount Sinai Health System and Nashville, Tenn.-based Envision Healthcare, among other healthcare customers, to provide adaptive multifactor authentication and HIPAA-compliant cloud identity solutions.

OPSWAT (San Francisco). OPSWAT focuses on technologies to protect clients against cyberattacks. The company’s solutions secure and manage IT infrastructure by scanning for known threats with anti-malware engines and sanitizing documents to prevent unknown threats.

Osirium (Theale, United Kingdom). Osirium’s software development team aims to fill the virtual air gap for privileged account access. The company was founded in 2008 and focuses on cybersecurity and hybrid-cloud automation technology as well as privileged protection and task-automated solutions.

Ostendio (Arlington, Va.). Ostendio serves primarily healthcare clients, including WellDoc, the American College of Cardiology and Higi. The company’s MyVCM Cybersecurity and Information Management platform uses behavioral analytics to drive employee and vendor engagement. Ostendio’s solution manages all aspects of security and allows organizations to report their security profile to internal and external stakeholders.

PhishLabs (Charleston, S.C.). PhishLabs is a 24/7 service that protect organizations against cyberattacks targeting employees or customers. Founded in 2008, the company provides a full range of services to detect attacks, identify attack operations and mitigate underlying infrastructure to stop the threat. The company also provides services and training specific to protecting patient and healthcare provider information. In May, PhishLabs merged with BrandProtect, a threat intelligence and mitigation solutions provider.

Praetorian (Austin, Texas). Praetorian’s solutions aim to identify and solve cybersecurity problems enterprisewide. The company’s technical engineers and developers offer security expertise to minimize risk across digital assets. Praetorian offers corporate and product security solutions unified through its software platform. In the healthcare space, the company works with medical device manufacturers to identify and address vulnerabilities.

PriorityOne Group (Rutherford, N.J.). PriorityOne Group manages, implements and provides integrated IT services to healthcare organizations in and around Bergen County, N.J. The company focuses on guiding providers, including ASCs, through HIPAA compliance, product integration and technology acquisition.

Promisec (Boston). Promisec is an endpoint system, software asset management and compliance company that aims to help organizations avoid cyberthreats and attacks that lead to data breaches. The company’s technology provides secure endpoints and clean audits to meet regulatory compliance standards.

Protegrity (Stamford, Conn.). Protegrity aims to develop solutions to protect data throughout its lifecycle without disrupting workflow. The company can provide security across big data clusters, cloud environments, databases and mainframes. The Protegrity data security platform can protect sensitive healthcare data through tokenization and encryption technologies.

Prot-On (Spain). Prot-On provides a solution to protect files, decide who has access to files and track file activity. Healthcare organizations use Prot-On to securely store and communicate patient and prescription information as well as share health records with patients.

Pulse Secure (San Jose, Calif.). Pulse Secure provides secure access solutions to enterprises and service providers. The company’s virtual private network, network access control and mobile security products are designed for data security. In the healthcare space, Pulse Secure provides medical-grade network visibility and control solutions to support a bring-your-own-device environment and can ensure security for the internet of things.

Risk Based Security (Richmond, Va.). Risk Based Security focuses on risk identification and security management tools to protect a variety of clients, including drug companies and healthcare providers. Founded in 2011, the company offers a full set of analytics and dashboards designed to identify security risks by industry. The company provides several HIPAA- and HITECH-compliant solutions for protecting patient data.

RiskSense (Albuquerque, N.M.). RiskSense focuses on reducing cyberattacks and security risks. Cybersecurity practitioners founded the company as a spin-off of New Mexico Institute of Mining and Technology in Socorro, which originally conducted research as a service project. Since then, the company has developed to advise the Department of Defense and intelligence community and create the RiskSense platform. The company also partners with healthcare organizations that have limited resources to protect against cyberattacks.

Rogue Wave Software (Boulder, Colo.). Founded in 1989, Rogue Wave has grown into a global company focused on cross-platform software development tools and embedded components. The company provides life science and medical companies with necessary tools and consulting expertise to accelerate the time it takes to bring their devices to market as well as achieve accurate and reliable results.

Rsam (Secaucus, N.J.). Rsam sets the foundation for enterprise risk management and includes intuitive templates to deploy in complex situations. The company offers audit management, compliance, risk management, security incident response and vendor risk management, among other services. In the healthcare space, Rsam delivers a comprehensive risk assessment tool and establishes repeatable and consistent processes to support compliance and an enterprisewide incident management program.

SecureMySocial (New York City). SecureMySocial technology scans social media use and warns organizations about activities that expose them to risk in real time. The platform prevents information breaches and data leaks on social media. In May, the company was named to 2018 Cyber Security 500 list.

Sedara (Buffalo, N.Y.). Sedara is a managed security service provider with clients across the U.S. The company manages network security for clients and ensures regulatory compliance, including HIPAA compliance, for organizations across the spectrum. The company provides continual data monitoring and alert systems to identify and defeat hack attempts. In 2017, Sedara partnered with The Bonadio Group, a New York-based independent cybersecurity and compliance services provider.

SentinelOne (Palo Alto, Calif.). A group of international defense and intelligence experts founded SentinelOne to tackle cybersecurity issues with a new endpoint protection approach. The company’s platform is certified as an antivirus preplacement. The SentinelOne Endpoint Protection Platform can monitor all endpoints accessing HIPAA-sensitive information and protect health information and can also predict advanced attacks and automate the threat response process.

Shape Security (Mountain View, Calif.). Shape provides protection against web and mobile cyberattacks to corporations around the world. The company is focused on protecting against high traffic and mobile application attacks. In the healthcare space, Shape Security can protect against distributed denial-of-service attacks and keep the organization’s website running.

Skybox Security (San Jose, Calif.). Skybox is a privately held cybersecurity management company established in 2002. Skybox’s security platform uses firewall and network device data to detect vulnerabilities, and its powerful attack vector analytics can reduce response times for greater network control. The company covers more than 2,000 enterprises globally, including Delta Dental, Neptune, N.J.-based Meridian Health System and eHealthInsurance in the healthcare sector.

Stratiform (El Segundo, Calif.). PCM acquired Stratiform in January 2017. Stratiform is a cloud IT solutions provider with consulting, professional and managed services. The company specializes in Microsoft cloud technology and post-acquisition Stratiform plans to grow in the U.S. and Canada.

Swimlane (Louisville, Colo.). Swimlane is a security and operations management platform with the capability to centralize security alerts and automate attack response. The company provides security automation and orchestration to unify, analyze and resolve alerts from the organization’s existing security tools and provide analysts with threat intelligence. The company’s solution can also gather security metrics and generate reports on cybersecurity efforts.

Swivel Secure (West Yorkshire, United Kingdom). Founded in 2001, Swivel Secure’s AuthControl Sentry authentication platform allows organizations to tailor authentication requirements according to individualized security policies. Earlier this year, the company expanded their global partner program concentrating efforts on the United States.

Sword & Shield (Knoxville, Tenn.). Sword & Shield is a holistic information security provider with solutions to evaluate, remediate and monitor data security. The company also provides consultants to assist in all aspects of the security and compliance lifecycle, including HIPAA compliance. The company’s team of experts makes recommendations to increase HIPAA compliance with the HIPAA Security and Privacy kit.

Synopsys (Mountain View, Calif.). Synopsys is a software partner for companies around the world, focused on electronic design automation and semiconductor internet protocol. The company works with healthcare organizations to address cybersecurity risks for personal patient information and medical device hacking.

Tanium (Emeryville, Calif.). Tanium’s solution for hospitals and health systems provides complete visibility across managed and unmanaged endpoints to improve security hygiene. The tool allows users to ask a simple or complex question of any or all endpoints and receive a response directly from all endpoints within 15 seconds. Tanium can also collect data from third-party endpoint agents to bring multiple security and IT operations under one platform, which can help streamline operations and reduce costs.

ThreatMetrix (San Jose, Calif.). The ThreatMetrix Digital Identity Network is designed to inspect digital transactions across applications, devices and locations in real time. The company also provides online fraud prevention and can pinpoint suspect behavior and fraud attempts before damage is done. The company also provides authentication for patients, payers and physicians logging into the system.

TraceSecurity (Baton Rouge, La.). TraceSecurity is a leading provider of cybersecurity and compliance solutions that help organizations of all sizes reduce the risk of cyber breaches and demonstrate compliance. With a combination of software and services, TraceSecurity can help organizations manage their information security program and supplement it with third-party validation.

TrapX Security (San Mateo, Calif.). TrapX Security’s TrapX DeceptionGrid allows customers to send “traps” that impersonate systems and devices, responding like attackers in the real world, to fool and entrap attackers. Sending out multiple traps alongside real systems and devices ensures the system can identify and contain attackers before any damage is done. The technology can detect sophisticated attackers and provide real-time forensics and analysis for the hospital’s security operations team to take immediate action.

Trend Micro (Irving, Texas). Trend Micro is a global cybersecurity company providing solutions for consumers, businesses and governments. The company’s XGen solution was developed to help healthcare organizations improve security before, during and after attacks.

Trustwave (Chicago). Trustwave currently works with more than 3 million businesses to protect data and reduce security risks. The company provides a flexible portfolio of services to healthcare organizations designed to protect their specific infrastructure, networks and data while remaining HIPAA and HITECH compliant.

Untangle (Sunnyvale, Calif.). The Untangle NG Firewall is designed as a single, modular platform that clients can run on their own hardware or as a virtual machine. Untangle helps the healthcare industry comply with HIPAA and HITECH through granular controls over who has access to the data.

Varonis (New York City). Varonis’ platform collects, stores and analyzes metadata in real time to protect data from cyberattacks. Organizations can monitor their unstructured data using the company’s platform. Varonis specializes in protecting file and email systems storing spreadsheets, word processing documents, presentations and audio and video files that contain sensitive information. The company also offers a HIPAA compliance crash course.

Vera (Palo Alto, Calif.). Vera aims to protect data with strong encryption on any device without changing the existing workflow. The company’s data-centric security solution is designed for collaboration while ensuring a high level of security, visibility and control. Vera includes HIPAA-compliant verticals for healthcare providers as well as pharmaceutical companies to secure intellectual property and trial data.

Virtru (Washington, D.C.). Virtru’s products allow businesses and individuals to control access to emails, documents and data regardless of where the files are shared. In the healthcare space, the company’s technology allows providers to share HIPAA-compliant emails and attachments, automatically identifying and encrypting personal health information. The company focuses on business privacy and data protection for more than 5,000 organizations worldwide. In May, the company closed a $37.5 million series B investment.

WhiteHat Security (Santa Clara, Calif.). WhiteHat Security focuses on securing web applications and delivering solutions to reduce the risk of cyberattacks. Healthcare providers use the company’s technology as well as expertise to deploy secure applications and websites, as well as third-party apps.

WinMagic (Mississauga, Ontario). WinMagic is a data security solutions company that secures data where it’s stored and provides enterprise-grade data encryption and key management policies across an organization’s operation systems. In the healthcare space, the company’s platform encrypts patient data and takes steps to ensure there won’t be a compliance breach.

Wombat Security Technology (Pittsburgh). Founded in 2008, Wombat Security Technologies received funding from the National Science Foundation and Department of Defense to develop a suite of cybersecurity software training and filtering technologies. The company evolved its provider awareness and training software to support clients’ efforts to teach secure behavior. In February 2017, the company expanded its healthcare security awareness training program to include ransomware training.